Upstream/harbor
1
0
Fork 0
mirror of https://github.com/goharbor/harbor.git synced 2024-06-26 14:55:06 +02:00
Code Issues Projects Releases Wiki Activity

Add externalPort in values.yaml

Browse Source 
Fixes #5133
Provide more flexibility for ingress controller setting.  When the
ingress controller is not exposing 80/443 port, user can set `externalPort` to expose the endpoint of Harbor.
This commit is contained in:
Daniel Jiang 2018-06-16 04:30:34 +08:00
parent 2a77ed73dc
commit 8cd90b6809
5 changed files with 14 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
contrib/helm/harbor/templates/_helpers.tpl
View File

@ -30,6 +30,14 @@ release: {{ .Release.Name }}
app: "{{ template "harbor.name" . }}" app: "{{ template "harbor.name" . }}"
{{- end -}} {{- end -}}
{{- define "harbor.externalURL" -}}
{{- if .Values.externalPort -}}
{{- printf "%s:%s" .Values.externalDomain (toString .Values.externalPort) -}}
{{- else -}}
{{- .Values.externalDomain -}}
{{- end -}}
{{- end -}}
{{/* {{/*
Use *.domain.com as the Common Name in the certificate, Use *.domain.com as the Common Name in the certificate,
so it can match Harbor service FQDN and Notary service FQDN. so it can match Harbor service FQDN and Notary service FQDN.

2
contrib/helm/harbor/templates/notary/notary-cm.yaml
View File

@ -56,7 +56,7 @@ data:
"auth": { "auth": {
"type": "token", "type": "token",
"options": { "options": {
"realm": "https://{{ .Values.externalDomain }}/service/token", "realm": "https://{{ template "harbor.externalURL" . }}/service/token",
"service": "harbor-notary", "service": "harbor-notary",
"issuer": "harbor-token-issuer", "issuer": "harbor-token-issuer",
"rootcertbundle": "/root.crt" "rootcertbundle": "/root.crt"

2
contrib/helm/harbor/templates/registry/registry-cm.yaml
View File

@ -38,7 +38,7 @@ data:
auth: auth:
token: token:
issuer: harbor-token-issuer issuer: harbor-token-issuer
realm: "https://{{ .Values.externalDomain }}/service/token" realm: "https://{{ template "harbor.externalURL" . }}/service/token"
rootcertbundle: /etc/registry/root.crt rootcertbundle: /etc/registry/root.crt
service: harbor-registry service: harbor-registry

2
contrib/helm/harbor/templates/registry/registry-ss.yaml
View File

@ -35,7 +35,7 @@ spec:
- containerPort: 5000 - containerPort: 5000
- containerPort: 5001 - containerPort: 5001
volumeMounts: volumeMounts:
{{- if not .Values.registry.objectStorage }} {{- if and (not .Values.registry.objectStorage) .Values.persistence.enabled }}
- name: registry-data - name: registry-data
mountPath: /var/lib/registry mountPath: /var/lib/registry
{{- end }} {{- end }}

3
contrib/helm/harbor/values.yaml
View File

@ -33,6 +33,9 @@ harborImageTag: &harbor_image_tag v1.5.0-chart-patch
# The FQDN for Harbor service. # The FQDN for Harbor service.
externalDomain: harbor.my.domain externalDomain: harbor.my.domain
# externalPort is the Port for Harbor service, leave empty if the service is to be bound to
# port 80/443
externalPort: 32700
# If set to true, you don't need to set tlsCrt/tlsKey/caCrt, but must add # If set to true, you don't need to set tlsCrt/tlsKey/caCrt, but must add
# Harbor FQDN as insecure-registries for your docker client. # Harbor FQDN as insecure-registries for your docker client.
insecureRegistry: false insecureRegistry: false